Chasing the Silver Fox: Cat & Mouse in Kernel Shadows 

Highlights: Introduction While Microsoft Windows has steadily strengthened its security model—through features like Protected Processes (PP/PPL) and enhanced driver verification—threat actors have adapted by shifting their tactics to exploit lower-level weaknesses that bypass these protections without triggering defenses. Among the most effective of these techniques is the abuse of vulnerable kernel-mode drivers, particularly those capable
The post Chasing the Silver Fox: Cat & Mouse in Kernel Shadows appeared first on Check Point Research.Check Point ResearchRead More